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(57) ABSTRACT 

Abridge (62) capable of reducing unwanted WAN multicast 
packet traffic in a LAN and an associated method and an 
associated LAN is disclosed. The bridge examines the 
contents of WAN multicast query and report packets and 
WAN multicast router-to-router discovery packets and 
includes this information in its filtering database (88). The 
bridge designates ports on which query packets or MRRDPs 
are received as router ports. When there is no WAN router 
generating multicast query packets into the LAN, the bridge 
simulates the behavior of a WAN router and generates WAN 
multicast query packets so as to cause report packet gen- 
eration by end systems. A timeout interval for undesignating 
router ports and a method for determining an appropriate 
timeout for a port is disclosed, 
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METHOD AND APPARATUS FOR 
TRANSPARENT INTERMEDIATE SYSTEM 
BASED FILTERING ON A LAN MULTICAST 
PACKETS 

CROSS-REFERENCE TO RELATED 
APPLICAnON 

This application is a continuation of, and claims the 
benefit of priority from, co-pending U.S. patent application 
Ser. No. 08/761,574, filed Dec. 6. 1996, which is a 
continuation-in-part of U.S. patent application Ser. No. 
08/542,157, filed Oct. 12. 1995, now U.S. Pat. No. 5,818, 
838, the full disclosures of which are incorporated herein by 
reference. 

BACKGROUND OF THE INVENTION 

An extensive discussion of important background con- 
cepts was included in Ser. No. 08/542,157. That discussion 
is incorporated herein by reference and summarized below. 

This invention relates to transmission of information 
between multiple digital devices on a network and between 
multiple networks on an internetwork. More particularly, 
this invention relates to a method and apparatus for allowing 
an intermediate system within a local area network (LAN) to 
transparently filter multicast packets from a wide area net- 
work or internetwork (WAN) directed to that LAN so that 
those packets are only delivered to end systems that wish to 
receive them. 
Standards 

This specification presumes some familiarity with the 
general concepts, protocols, and devices ciu^rently used in 
LAN networking applications and in WAN internetworking 
applications such as IEEE 802 (also ISO 8802). Among the 
protocols specified in IEEE 802 are IEEE 802.3, the LAN 
protocols commonly referred to as Ethernet. A separate set 
of protocols used in internetworking, i.e. connecting mul- 
tiple LANs, is referred to as the TCP/IP Protocol Suite. (TCP 
and IP are acronyms for Transmission Control Protocol and 
Internet Protocol.) 

An overview of concepts related to the invention is 
presented below. For a more detailed discussion of back- 
ground information, the reader should consult the above 
mentioned standards documents or a number of readily 
available reference works including Stevens, R. W., TCP IIP 
Illustrated, Addison Wesley,' 1994. 
FIG. 1 

FIG. 1 illustrates a local area network (LAN) 40 of a type 
that might be used today in a moderate sized oflSce or 
academic environment and of a type in which the present 
invention may be effectively employed. Typical modern 
LANs such as 40 are comprised of one to many LAN 
intermediate systems (ISs) such as ISs 60-62 that are 
responsible for data transmission throughout the LAN and a 
number of end systems (ESs) such as ESs 50fl-rf, 51fl-c, and 
52a-gy that represent the end user equipment. In one type of 
LAN, LAN ISs 60-61 are referred to as bridges and WAN 
ISs 63 and 64 are referred to as routers, however many 
different LAN configurations are possible, and the invention 
is not limited in application to the network shown in FIG. 1. 

The LAN shown in FIG. 1 has segments 70a-€, lla-e, 
and 72a-e, and 73a. A segment is generally a single inter- 
connected medium, such as a length of contiguous wire, 
optical fiber, or coaxial cable or a particular frequency band. 
A segment may connect just two devices, such as segment 
70a, or a segment such as 72d may connect, a number of 
devices using a carrier sense multiple access/collision detect 
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(CS MA/CD) protocol or other multiple access protocol such 
as a token bus or token ring. A signal transmitted on a single 
segment, such as 72d, is simultaneously heard by all of the 
ESs and ISs connected to that segment. 
5 Packets 

In a LAN such as 40, data is generally transmitted 
between ESs as independent packets, with each packet 
containing a header having at least a destination address 
specifying an ultimate destination and generally also having 

10 a source address and other transmission information such as 
transmission priority. Transmissions within the LAN are 
generally source driven, i.e. the LAN will deliver a data 
packet from a source to the destination address specified in 
the packet regardless of whether that destination ES actually 

15 wants to receive the packet. Packets may contain data or 
may be control packets, containing control information that 
is used to facilitate communication within the network. 
Bridges 

The LAN ISs in LAN 40 include bridges 60-63. Bridges 

'20 are understood in the art to be a type of computer optimized 
for very fast data communication between two or more 
segments. For example, bridge 60 is a computer having a 
processor, a memory for storing network information, con- 
nections to two or more separate segments, and a buffer 

25 memory for storing packets received from one segment for 
transmission on another segment. Bridge 60 receives pack- 
ets from a source segment such as 70/, stores the packets, 
and then transmits the packets on another segment such as 
70fl, when the bridge detects that the other segment is silent. 

30 A bridge generally makes no changes to the packets it 
receives on one segment before transmitting them on 
another segment. Bridges are not necessary for operation of 
a LAN and in fact are generally invisible to both the ESs to 
which they are connected and to other bridges and routers. 

35 By invisible it is meant that a prior art bridge does not 
communicate any control packets to other devices at other 
layers in the network and facilitates communications 
between devices on two different segments in such a way 
that neither the sending device nor the receiving device is 

40 aware that the devices are not on the same segment. 

Modem bridges, as described below, provide filtering 
functions whereby a bridge learns the LAN addresses of all 
ESs that may be reached through each of . its ports and 
forwards packets only out of the port to which the destina- 

45 tion ES of that packet is connected. Filtering bridges are 
enabled to quickly examine the LAN address of every 
received packet to determine whether and to which segment 
that packet must be bridged. As an example, when filtering 
bridge 62 receives a packet on segment 72a addressed to 

50 52/?, that packet is bridged only to segment 72b and not to 
segments 72c and 72d. 

In order to accomplish this filtering function, a bridge 
must somehow know which ESs are attached to each seg- 
ment connected to the bridge. Generally, this is done in one 

55 of two ways: a bridge may be configured by a network 
manager to know the LAN addresses of the ESs connected 
to each segment, or a bridge may be enabled to learn the 
LAN address of ESs connected to each segment as the 
bridge is receiving packets. Bridges enabled to learn which 

60 ESs are cormected to each of their segments do so by 
examining the LAN source address of packets received on a 
particular port. A self- learning bridge generally stores the 
information it learns fi-om examining the source address of 
packets in. a portion of the bridge's memory referred to 

65 herein as a Bridge Filtering Table (BFV), Once a bridge has 
placed entries in its BFl", upon receiving a packet, the bridge 
will examine the LAN destination address of the buffered 
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packet and if, according to the BFT, the destination address 
is on the same segment from which the packet was received 
then the packet has presumable akeady been received by the 
destination ES and the bridge discards the buffered packet. 
If the destination ES is on a different segment from the 5 
originaiing ES then the bridge bridges the packet by trans- 
mitting it on the destination ES's segment. If the destination 
address is not present in the BFT, then the bridge must 
bridge the packet to all other segments to insure that the 
proper ES receives the packet. In this way, self-learning lO 
bridges gradually learn more and more about the ESs 
connected to them and gradually reduce unnecessary data 
flow through the I,AN. In a prior art bridge, construction of 
the BFT and subsequent filtering of packets is accomplished 
transparently by the bridge without the need for the ESs to is 
be aware of the bridge or to transmit any control packets to 
the bridge. A prior art bridge neither transmits nor receives 
control packets with other devices in the LAN. 

Some prior art bridges implement an algorithm known as 
the Spanning Tree Algorithm which allows them to ensure 20 
that a segment that is connected to more than one bridge 
only receives packets from one of them. This algorithm is 
described fully in IEEE standard 802. Id. 
LAN Broadcast and Group Address Packets 

In the previous discussion, it was assumed that every 25 
packet in the LAN contained a destination address indicating 
delivery to just one destination. This is referred to in the art 
as a unicast packet. It is also possible for a source in LAN 
40 to transmit a packet to all the ESs in the network using 
a special address known as a broadcast address. A broadcast 30 
address is special destination address reserved by the LAN 
protocol for broadcast packets. In most LAN 
implementations, the broadcast address can never be a 
source address for a packet and therefore the broadcast 
address will never be entered into a BFT. Every bridge 35 
receiving a broadcast packet will attempt to find the packet's 
destination address in that bridge's BFT, will fail, and will 
therefore bridge the packet to all ports, which is exactly what 
is desired for a broadcast packet. As an alternative, a bridge 
may be pre-configured by its driver software to recognize 40 
broadcast packets and forward them to all ports. 

In 802.3 Ethernet, Ethernet addresses are 48 bits. The 
broadcast address is defined as FFFF or all l*s. 802.3 also 
defines a set of Ethernet Group Addresses, indicating more 
than one but less than all destinations. Ethernet Group 45 
Addresses are reserved addresses that cannot be assigned to 
any individual ES or IS. Within a standard prior art LAN, 
any packet having a Ethernet Group Address is broadcast to 
every ES in the LAN, and it is up to the individual ESs to 
determine whether they want to receive the packet based on 50 
that packets Group Address. 
Routers 

ESs within LAN 40 can communicate with any other ES 
in LAN 40 either directly if the ESs are on the same physical 
segment or through a bridge. However, if an ES wishes to 55 
communicate with an ES or other service on a different 
LAN, that data must be transmitted over a WAN such as 42. 
FIG. 2 depicts WAN 42. WAN 42 is a network of networks, 
or an internetwork. (The largest and most well known 
internetwork is the world-wide Internet.) WANs are gener- 60 
ally comprised of a number of larger computers that arc 
optimized for WAN transmissions, herein referred to as 
routers 64 and 6Sa-e. A router is a generally larger computer 
than a bridge, but, like a bridge, it too has a processor, a 
memory for storing network information, and connections to 65 
two or more separate segments. Some routers, like router 64, 
provide WAN services to a LAN and in addition can forward 
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WAN packets through the mesh network to facDitate WAN 
communication. Other routers are multi-user multipurpose 
computers or file-servers that include routing functions. Still 
other routers are computers exclusively reserved for han- 
dling WAN data traffic. 

Communication of WAN packets over WAN 64 via the 
routers is very different from packet communication within 
LAN 40 and occurs under a different protocol having a 
different addressing scheme. Unlike bridges, routers com- 
municate control packets with every ES to which they are 
attached as well as to other routers in the WAN. A router uses 
information it receives via control packets and possibly 
configuration information supplied by an operator to build a 
representation for itself of the network, which the router 
stores in a routing table. A router examines the WAN 
destination address of every packet it receives and uses 
information stored in its routing table to make an individual 
routing determinations about a packet based on the packet's 
destination address, other information in the packet's 
header, and the router's knowledge about the dynamic state 
of the WAN. Unlike a bridge, a router may make two 
different routing determinations for different packets with 
the same destination address based on the dynamic state of 
the WAN. A router such as 64 is generally unaware of the 
presence of any bridges within a LAN to. which it is 
connected and sends all data into the LAN as though router 
64 was directly connected to each ES within the LAN. 

Typically, a WAN such as 42 wiW have a different address- 
ing scheme and different packet structure than that used in 
the LAN. Every ES in LAN 40 that wishes to receive packets 
from WAN 42 must have assigned to it a separate WAN 
address. In IP, WAN addresses are 32 bits long and are 
generally written in a dotted decimal notation having values^ 
from 0.0.0.0 to 255.255,255.255. Router 64 leams the LAN 
address and the WAN address of every ES in LAN 40 and 
translates packets and addresses between LAN 40 and WAN 
42. 

FIG. 3 depicts a packet as it may be transmitted to or from 
router 64 on LAN segment 13a. "llie packet is essentially an 
Ethernet packet, having an Ethernet header 202 and a 48-bit 
Ethernet address (00:60:8C:19:AA) 204, and an Ethernet 
trailer 230. Within the Ethernet packet 200 is contained, or 
encapsulated, an IP packet, represented by IP header 212, 
containing a 32 bit IP address 214 (199.35.126,34). Packet 
200 contains a data payload 220 which holds the data the 
user is interested in receiving or holds a control message 
used for configuring the network. 
WAN Multicasting 

WAN 42 may be enabled to route WAN multicast packets 
(WMPs) which are delivered only to those routers that 
request receipt of them. When running according to the 
TCP/IP Suite, routers and ESs communicate routing infor- 
mation through a special protocol referred to as the Internet 
Group Management Protocol (IGMP). In IP Multicast, a 
source that wishes to send WMI^ will be assigned a special 
WAN multicast destination address from a list of addresses 
reserved for multicast. Within LAN 40, WMPs are translated 
by router 64 into LAN packets having a LAN destination 
address that is a LAN Group Address. IP Multicast includes 
a direct algorithmic mapping between a WAN IP Multicast 
Address and a LAN Group Address. According to IGMP, a 
router such as 64 periodically queries ESs connected to it to 
report back to the router if they wish to receive any WMP 
streams. This query is broadcast within LAN 40 to one of the 
reserved Ethernet Group Addresses. An ES that wants to 
receive a WMP stream will respond to this IGMP Query by 
transmitting an IGMP Report to the group address of which 
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it wishes to be a member. This report is heard and registered 
by router 64. The IGMP report is addressed to a LAN 
address that corresponds to the WMP address that the ES 
wishes to receive. An ES sends a separate report for each 
WMP stream it wishes to receive. In the art, it is sometimes 5 
said that the ES joins a multicast group each time it indicates 
to the router that it wishes to receive a particular WMP 
stream. The router compiles the IGMP reports it receives 
from one or more ESs and then the router sends a request to 
other routers in WAN 42 requesting delivery of particular lO 
WMP streams. 

Three details of IGMP are important for the following 
discussion. One is that an ES may leave a multicast group at 
any lime without informing the router. The ES simply does 
not respond the next time that the router sends an IGMP 15 
Query on the LAN. (Newer versions of IGMP allow an ES 
to send a packet telling the router that they no longer wish 
to receive a particular WMP stream, but these newer ver- 
sions do not require ESs to do so.) A second important detail 
of IGMP is that in the case where a LAN such as 40 contains 20 
two routers with connections to the same WAN, the IGMP 
protocol includes a mechanism for preventing both routers 
from transmitting Query packets to the LAN. According to 
IGMP, when a router receives a Query packet on any of its 
LAN ports, it examines the WAN source address of that 25 
packet and if the source address is lower than the router's 
own WAN address, the router suppresses transmitting Query 
packets. Thus, eventually, only one router (in one embodi- 
ment the one with the lowest IP address) will transmit Query 
packets on any given LAN. 30 

A final important detail of IGMP is that ESs read IGMP 
Reports addressed to groups to which they belong. Accord- 
ing to IGMP, an ES does not send an IGMP Report for a 
WMP address if the ES detects that another ES on its 
segment has already requested that WMP address. The 35 
second ES will simply receive the WMPs as they are being 
transmitted to the first ES to request them. What this means 
is that under IGMP, a router never knows whether only one 
or more than one ESs on the LAN to which it is connected 
actually wishes to receive a particular WMP stream. ^Fhe 40 
router therefore cannot direct WMPs to a particular ES LAN 
destination address, but must direct the WMP to one of the 
reserved LAN Group Addresses. 

The TCP/IP protocol suite also supports a number of 
WAN multicast routing protocols which routers use to 45 
communicate routing information. IGMP is used to com- 
municate between ESs and routers, but other protocols are 
needed to communicate multicast information between rout- 
ers. To date, the most widely deployed multicast routing 
protocols are Distance Vector Multicast Routing Protocol 50 
(DVMRP), Multicast Open Shortest Path First (MOSPF), 
and Protocol Independent Multicast (PIM). A given WAN 
multicast router may employ one or more of these multicast 
routing protocols to communicate with neighboring routers. 

Regardless of which router-to-router multicast protocol is 55 
used in a given LAN, all router-to-router protocols are 
characterized by the fact that they define certain packets 
which are never inhibited that multicast routers use to 
discover one another. These packets will be referred to 
herein as Multicast Router-to-Router Discovery Packets 60 
(MRRDPs). Generally, MRRDPs are addressed to LAN 
multicast destination addresses which are reserved for con- 
trol packets — those where the low order 24 bits lie between 
hexadecimal 00:00:00 and 00:00;FE DVMRP packets are a 
type of IGMP packet, but since they are addressed to a 65 
multicast address which is reserved for routers, ESs ignore 
them. Older versions of the PIM protocol have packets 
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which are also a type of IGMP packet, but newer versions of 
PIM may have packets which are their own IP protocol type. 
MOSPF packets are a variant of OSPF packets which have 
multicast information embedded within them. 

ESs generally ignore MRRDPs. Prior art ISs handle 
MRRDPs no differently than other multicast packets. 

An important difference between MRRDPs and IGMP 
Query packets is that, whereas a router receiving an IGMP 
Query packet will suppress it's own IGMP Query packets if 
the WAN source address of the received packet is lower than 
its own WAN address, for the most part, routers never 
suppress MRRDP packets even when they detect another 
router sending MRRDP packets on their connected network. 
Wan Multicast Packets in a LAN 

As described above, within LAN 40, Group Address 
packets arc delivered via the bridges to every segment in the 
LAN. Therefore, even if just ES 72b in LAN 40 requests a 
particular WMP stream, that stream will be converted to a 
LAN Group Address and be delivered to every ES in LAN 
40. In the case of a heavy WMP stream such as a video link, 
this can result in a huge amount of unwanted traffic on 
various LAN segments. 

One prior art solution to this problem would be to 
reconstruct LAN 40 and replace each of the bridges 60-63 
with computers that function more as routers. These "rout- 
ers" would then be able to participate in the overall IGMP 
protocol and direct WMP packets only to those segments 
where they were wanted. This is an expensive proposition, 
however/ increasing the cost of the LAN hardware 
infrastructure, LAN management, and likely decreasing the 
overall speed of the LAN. 
Layers 

A final background concept important to understanding 
the present invention is the concept of layered network 
protocols. Modem communication standards, such as the 
TCP/IP Suite and the IEEE 802 standards, organize the tasks 
necessary for data communication into layers. At different 
layers, data is viewed and organized differently, different 
protocols are followed, and different physical devices handle 
the data traflBc. RG. 4 illustrates one example of a layered 
network standard having a number of layers, which we will 
refer to herein as: the Physical Layer, the Data Link Layer, 
the Routing Layer, the Transport Layer and the Application 
Layer. These layers correspond roughly to the layers as 
defined within the TCP/IP Suite. (The 802 standard has a 
different organizational structure for the layers and uses 
somewhat different names.) 

An important ideal in layered standards is the ideal of 
layer independence. A layered protocol suite specifies stan- 
dard interfaces between layers such that, in theory, a device 
and protocol operating at one layer can co-exist with any 
number of different protocols operating at higher or lower 
layers, so long as the standard interfaces between layers are 
followed. 

To tie the concept of layers back to the preceding 
discussion, it may be seen that in LAN 40, WAN transmis- 
sions take place at the Routing Layer while LAN transmis- 
sions take place at the lower Data Link Layer. At the Routing 
Layer, ESs communicate control packets to the routers to 
which they are attached. However, at the Data Link Layer, 
ESs communicate no control packets with bridges and 
therefore ESs cannot participate in a multicast protocol at 
the Data Link Layer. 

From the preceding it will be seen that what is needed is 
a LAN capable of correctly accepting and delivering WAN 
multicast packets to end systems that desire to receive them, 
but that does not experience the heavy amounts of undesired 
traffic generated in prior art LANs. 
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For purposes of clarity, the present discussion refers to of skill in the art that the invention also has application in 

network devices and concepts in terms of specific examples, other protocol suites employing an analogous multicast 

namely Ethernet and TCP/IR However, the method and protocol. 

apparatus of the present invention may operate with a wide FIG. 5 is a block diagram of a bridge 62 with improve - 

variety of types of network devices including networks 5 ments according to an embodiment of the invention. The 

dramatically different from the specific examples illustrated bridge has five ports SOa-e which provide circuitry and 

in FIG. 1 and described below. In particular, the present connections that enable the bridge to communicate on each 

invention would have application within a set of proprietary segment 72a-e. Packets received over any port are stored in 

WAN and LAN standards has been developed by Apple Shared Packet Buffer Memory 82. Controller 84 reads each 

Computer Corporations and is referred to as Applelink and lo received packet and processes that packet based on the 

SMRP. It is therefore not intended that the invention be instructions specified in driver 86. Controller 84 includes 

limited except as done so in the attached claims. connections (not shown) to each other bridge component for 

sending and receiving control signals. 

SUMMARY OF THE INVENTION learning Unicast Addresses in a Prior Art Learning Bridge 

According to the present invention, an improved LAN ^ Pi?°/. "'li'iHses, controller 84 maintains 
and LAN bridges are capable of receiving WMPs and ^ Bridge Filtermg Table (BFT) 88 m an area of memory 
delivering those WMPs only on segments having at least one ^P^^^j^ ^^"^ P^^^et buffer. As is known in the prior an, 
router, or at least one ES that wishes to receive the WMPs. 88 contains entnes for each ES LAN address from 
The invention accomplishes this by modifying layer 2 ^^ich a packet is received. Each entry specifics the LAN 
intermediate systems within the LAN to listen to layer 3 ^0 address from which a packet is received and includes a 
routing control packets and to make filtering decisions based "^^^^ mdicating a port to which that address is con- 
on information in the layer 3 packets. The invention includes According to a default operation mode, bndge 62 
a mechanism for a layer 2 intermediate system lo generate graduaUy learns about ESs to which it is ports. Once a bndge 
layer 3 IGMP Query Packets when no higher level system is identified a particularly ES LAN address and stored an 
generating such packets in the LAN, The invention repre- ^5 identifier for the port lo which that ES is connected in BFT 
sents a substantial improvement over many types of prior art ^8, packets received at bndge 62 addressed to that LAN 
LANs where WAN MPs are forwarded to every segment in ^^^''^^^ '^"^g^^ «"*y r>OTi to which the ES is 
the LAN. In general, no modification is required in the connectedjn this way, bndge 62 gradually reduces unnec- 
protocols or hardware of the ESs or the WAN. ^^^^V ^^^^^ network. 

• , . . ,. , 30 High Level Descnption of the Invention 

Abndge according to the present mvent.on accomplishes According to the invention, bridge 62 is additionaUy 

these advantages by mon.tormg aU Routing Layer Multicast ^^^^^^^ ^^^^ ^^j,;^^, ^^^^^ LAN group 

data and MRRDPs and making fonvardmg decisions for r „ ^ . T/^ii>rn ^ * 

, , ^ °., t. . r . address as follows. The invention monitors IGMP packets 

multicast packets thereby. The bndge uses this mfoiTiiation ^j^j^^p^ ^^^^^ j^^^^^^, ^^^^^^ ^^^^ 

to augment its filtering database, thereby aUowmg for fast 33 ^j^,^^ ^ ^^^^ ^^^^ ^AN multicast addrx;ss 

filtering of unwanted WMPs. The bndge includes unproved u- u u j- ir-x^r» i * 

^. „ , i- . 7 • 1 J J which has appeared in an IGMP packet, 

instructions to preform the functions herein described and , jj-.- »u • 4- j * . • 

,.n ■ ^t • r c addition, the invention designates certain ports as 

may include hardware modifications allowmg tor rast „ ^ „ . i f am u- u ♦ • «• „ u- « 

^ . . „ . /. . ^M^T^^T^ Router Ports. In LANs which contain active multicast 

examination of layer 3 information m MRRDP. , . . . , »jinnrMi ,1 ^ • 

routers, ports on which MRKlJrs are received are desig- 

In a prior co-assigned application, a bridge attempted to 40 nated as Router Ports. In LANs which contain no multicast 

identify ports which were connected to multicast routers by routers, the most recent port on which an IGMP Query 

examining the IGMP Query packets it received. 'Hiis is not packet is received is designated the Router Port. 

the most refined solution, however, because multicast rout- when WAN multicast data packets (WMPs) arrive which 

ers may suppress generating IGMP Query packets when MRRDPs, the invention filters the packets as fol- 

another lower address router is present in the network. The 45 lo^vg. t^e packet is forwarded to all ports associated with the 

current invention, therefore, looks at IGMP Query packets multicast address in the internal database, as well as to 

and also examines all MRRDPs to determine which ports are Router Ports. MRRDPs are forwarded out all ports. 

connected to multicast routers. iq^^ Report packets are forwarded out only the Router 

BRIEF DESCRIPTION OF THE DRAWINGS l^^^^^,,^^ Router Ports 

FIG. 1 is a diagram of a local area network of one type in According to the invention, bridge 62 designates each one 

which the invention may be effectively employed; of its ports as either a Router Port or a non-Router port. 

HG. 2 is a diagram of a wide area network of one type in Generally, a port is designated a Router port if the port 

which the invention may be effectively employed; attaches to a portion of the LAN which contains a multicast 

™„ - . - 1 . 1 . J ■ 55 router. In FIG. 5, port 80e would be designated a Router 

FIG, 3 is a diagram of an IP packet encapsulated in an n * j . *u c * £a ^iT r 

^ ^ ^ Port, due to the presence of router 64 on the portion of the 

Ethernet packet; t axt u j / . -i-* r u 

*^ LAN attached to segment 12e. In cases where no active 

FIG. 4 is a diagram showing a layered network protocol; multicast routers are attached to any ports, the port on which 

FIG. 5 is a block circuit diagram of an improved bridge the most recent IGMP Query packet was received is desig- 

according to the invention. 60 nated as the Router Port. Finally, in cases where Bridge 62 

is itself the bridge in the LAN which is emitting the IGMP 
Queries for the LAN, there are no Router Ports designated 
on the bridge. 

The following detailed discussion will describe the func- According to a specific embodiment of the invention, the 

tion of an improved bridge according to the invention in 65 presence of a multicast router in a portion of the LAN 

terms of a two protocol suites that have previously been attached to a port is inferred by the examination of MRRDPs 

discussed, 802.3 and TCP/IP. It will be understood to those as follows. WAN multicast routers running the DVMRP 



DETAILED DESCRIPTION OF PREFERRED 
EMBODIMENTS 
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protocol are inferred when DVMRP PROBE (IGMP code 1) 
or DVMRP ROUTE REPORT (IGMP code 2) packets are 
received on the port. Other DVMRP packets are ignored. 
WAN multicast routers running the PIM protocol are 
inferred when PIM Query messages are received on the port. 5 
WAN multicast routers running the MOSPF protocol are 
detected when OSPF HELLO or Database Description pack- 
ets are received whose options fields have the multicast 
capability (MC) bit set. 
Timing Out Router Port Designations 

Once a port has been designated a Router Port, bridge 62 
will maintain that designation until bridge 62 fails to see a 
multicast routing protocol packet or IGMP Query Packet on 
that port within a specified time-out. After a time-out 
elapses, the port reverts back to a non-Router Port designa- 
tion. ^5 
Initiating IGMP Packets 

On power up or system reset or when none of its ports are 
designated as Router Ports, an improved bridge 62 accord- 
ing to the invention, transmits IGMP Query packets at 
regular intervals out of each of its ports A-E. Initially, each 20 
of these ports are designated by bridge 62 as non-Router 
Ports. Bridge 62 transmits IGMP Queries with a WAN 
source address which is assigned to it according to the 
invention. Standard prior art bridges do not have a WAN 
source address because they do not communicate at layer 3. 25 
In response to IGMP Queries, ESs attached to bridge 62 that 
wish to receive WMPs will transmit IGMP Reports on their 
segments. These reports will be received at bridge 62. These 
Reports have a destination address equal to the multicast 
address from which the ESs wish to receive packets and the 30 
source address of the ES sending the Report. Each time 
bridge 62 hears a Report on one of its ports, it stores an 
identifier for the port and the LAN Group address in BFT 88 
indexed according to that LAN Group Address and indicat- 
ing on which port the Report Packet was received by placing 35 
a flag value in an appropriate location (in the example in 
FIG. 5, bridge 62 places a "1" in a column designating ports 
B and D wish to receive WMP packets addressed to Ethernet 
Group address 09:10:7D:00). 

Similarly to as is known in prior art routers, whenever 40 
bridge 62 receives an IGMP Query Packet on one of its 
ports, it examines the WAN Source Address of the Query. If 
the WAN source address of the received Query Packet is 
greater than bridge 62' s WMP source address, bridge 62 
continues sending out its own Query Packets at a periodic 45 
interval. If the WAN source address of the received Query 
Packet is less than bridge 62 's WMP source address, bridge 
62 suppresses its own Query Packets. If no MRRDPs have 
been received within the time-out interval, it also marks the 
port on which the Query Packet was received as a Router 50 
Port. 

MRRDP Packets 

Whenever bridge 62 receives a multicast routing packet 
(DVMRP, PIM, or MOSPF) on any one of its ports, it does 
three things. First, it stops sending out its own IGMP Query 55 
Packets regardless of the WAN Source Address in the 
MRRDP packet, so thai the operation of the invention will 
be as transparent as possible to prior art bridges and routers 
in the LAN. Second, if any port was previously designated 
as a Router Port due to receipt of an IGMP Query packet, 60 
that port is designated as a non-Router port. Third, the port 
on which the multicast routing protocol packet was received 
is designated as a Router Port. Note it is possible for multiple 
ports to be Router Ports if all are receiving MRRDPs, but 
only one port can be a Router Port due to receipt of IGMP 65 
queries, and only if no MRRDPs have been received within 
a specified time-out interval. 
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Updating the BFT 

Whenever ports are updated from Router to non-Router 
status or from non-Router status to Router status, bridge 62 
updates a special entry in BFT 88 which indicates which 
ports are router ports. In the example in FIG. 5, in the BFT 
entry for Router Pons, bridge 62 places a "1" in column E 
designating port E is a Router Port. 
Forwarding Multicast Packets 

According to the invention, multicast packets are classi- 
fied into three types, each type with different forwarding 
mles. ITie first packet type is multicast packets with LAN 
destination addresses where the low order 24 bits are 
between 00:00:00 and 00:00:FF. These packets are consid- 
ered to be MRRDPs; they are assumed to be relatively low 
frequency and are not filtered. These packets are forwarded 
to all ports. IGMP report packets are referred to as Type 2, 
and all other WMPs, assumed to be data WMPs, are referred 
to as Type 3. 

According to the invention, bridge 62 forwards report 
packets (Type 2) only out of Router Ports in order to prevent 
ESs on other ports from suppressing their IGMP Report 
packets. According to the invention, bridge 62 needs to 
receive a Report packet from each of its segments where an 
ES has joined the group, so that it can identify the segments 
to which it must bridge WMPs. 

Type 3 packets, data WMPs, are forwarded according to 
the contents of BFT 88 as follows. Bridge 62 looks up the 
LAN destination address of the WMP in BFT 88 and 
forwards those packets out of all the ports specified in that 
entry in BFT 88, and also out of all ports specified in the 
special Router Ports entry in BFT 88. Therefore the inven- 
tion never filters any WMPs on Router ports. This is 
necessary so that the operation of the invention will not be 
visible to prior art multicast routers, and to ensure proper 
operation in a LAN with multiple switched segments, as 
described below. 

Note that forwarding WMPs on Router Ports lakes care of 
ESs such as 53a which are attached to a segment such as 
12e. An IGMP Report from ES 53fl might be inhibited by the 
forwarding of an IGMP Report by bridge 62 onto its Router 
Port. But since data WMPs are always forwarded on the 
Router Port, it is not necessary that bridge 62 sec the IGMP 
Report from ES 53a, the data WMPs are forwarded on that 
segment anyway. 

Example of Operation of the Invention With a Router in the 
LAN 

Consider the case in FIG. 1 where both ES 52a and 51a 
are sending IGMP Reports for a LAN multicast group to 
their respective directly attached bridges 62 and 61. The 
operation of the invention requires that bridge 63 forward 
the data WMPs on segments 12e and 71e, but not on 
segment 70e. 

If router 64 is running a multicast routing protocol, bridge 
63 must also forward data WMPs on segment 73a. The rules 
above provide for this behavior. In the case where router 64 
LS running a routing protocol, this works as follows: the 
IGMP Report from 52a will be forwarded by bridge 62 onto 
segment lie since MRRDPs emitted by router 64 have been 
received on segment 72^, and therefore port 80e has been 
designated a Router Port on bridge 62. The analogous 
process has operated on bridge 61. On bridge 63, the BFT 
for that LAN multicast address indicates that segments lie 
and lie are to receive WMPs for that destination address. In 
addition, segment 73a has been designated as a Router 
Segment (i.e. attached to a Router Port). 
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When data WMPs are emilted from ES S2a, they are 
forwarded onto segment lie and received by bridge 63. 
Bridge 63 forwards the data WMPs onto segment 7\e since 
IGMP Report packets were received for that WAN multicast 
address on that segment (because bridge 61 has designated 
segment 71e as a Router Segment). 

Bridge 61 forwards those frames to segment 71a to ES 
51a since IGMP Report packets were received on segment 
71a. Finally, bridge 63 forwards the data WMPs onto 
segment 73a since that is a Router Segment towards router 
64. This shows how the invention works correctly in a LAN 
where there are multiple segments linking bridges which 
incorporate the invention. 

Example of Operation of the Invention Without a Router in 
the LAN 

In the case where router 64 is not running a routing 
protocol, the invention operates correctly regardless of 
which WAN source address is assigned to which of the three 
bridges 61, 62, or 63, If bridge 63 has the lowest numbered 
WAN source address, bridges 61 and 62 have the same 
Router Ports as in the prior example and the same forward- 
ing paths operate. If bridge 61 has the lowest number IP 
address, then it will emit the IGMP Queries for the LAN. 
Bridge 62 operates as in the prior example since segment 
72e is still a Router Segment. Bridge 63 forwards packets 
onto segment 7Xe since it is a Router Segment relative to 
bridge 63. IGMP Reports are always forwarded to Bridge 
61, and therefore data WMPs from ES 51a still are for- 
warded to bridge 63 and thence to bridge 62, In summary, if 
no router is emitting MRRDPs in the LAN, the lowest 
numbered bridge takes over the role of emitting IGMP 
Queries, the IGMP Queries take the place of the MRRDPs, 
and data WMPs are forwarded only onto Router Segments 
and to non- Router Segments only when the attached ESs 
have emitted the corresponding IGMP Report packets. 
Further Embodiments Relating to Startup Operation 

According to a further embodiment of the invention, 
bridge 62 handles the startup phase of operation more 
gracefully. One problem with the startup phase is that until 
MRRDPs and IGMP Queries have been received, not all 
ports which should be designated Router Ports are desig- 
nated correctly. Also, until IGMP Report packets have been 
received, the contents of the BFT is not complete. 

The enhancement modifies the invention during two ini- 
tially coincident startup phases of operation as follows: the 
first startup phase is called the router discovery phase, and 
the second startup phase is called the group membership 
discovery phase. 

During the router discovery phase, the invention will not 
issue IGMP Query packets of its own. It will track ports on 
which IGMP Query packets and MRRDPs are received and 
designate those ports as Router Ports in the BF\\ as 
described in the invention. 

The router discovery phase ends when a time-out interval 
has expired during which it is expected to have received 
MRRDPs from all multicast routers on the LAN. The 
time-out interval is the maximum of the periodic rates at 
which the DVMRP PROBE, PIM QUERY, and MOSPF 
HELLO or other MRRDP packets are typically issued by 
multicast routers onto the LAN. 

The group membership discovery phase continues after 
the router discovery phase ends. If no MRRDPs have been 
received during router discovery phase, the bridge issues an 
IGMP Query message on all ports and the group member- 
ship discovery phase ends in approximately 10 additional 
seconds — long enough to be sure that all subsequent IGMP 
Report packets have been received. If MRRDPs have been 
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received during the router discovery phase, the second 
startup phase lasts for 3 minutes, or until an IGMP Query 
packet has been received and 10 additional seconds have 
elapsed — long enough to be sure that an IGMP Query 
5 message should have been received from one of the multi- 
cast routers on the LAN, and that the subsequent IGMP 
Report packets have also been received. 

During both startup phases, forwarding of type 3 packets 
(data WMPs) is done to all ports on the bridge, regardless of 
the state of the BFT. This ensures that no incorrect filtering 
takes place on the bridge. During both startup phases, type 

2 packets (IGMP Report packets) are forwarded as described 
in the invention above. 

15 Further Embodiments Relating to the BFT 

The invention may therefore be embodied entirely within 
a layer 2 bridge operating as would be expected and per- 
forming all filtering functions using layer 2 addresses. One 
modification required of the layer 2 bridge would be a 
mechanism to allow the bridge to examine the layer 3 header 
contents of packets in order to identify certain MRRDP 
packets and to identify WAN multicast report packets gen- 
erated by ESs. 

25 The invention also may be embodied in a modified bridge 
that is enabled to examine and filter packets based on layer 

3 addresses of packets. In such a modified bridge, the BFT 
or parts of the BFT may be indexed based on layer 3 
addresses. 

30 According to a further embodiment of the invention, 
bridge 62 indexes entries in the BFT not by the LAN 
multicast destination address, but by the WAN multicast 
source and destination address pair. In this embodiment, 
when a data WMP is received, the bridge looks up the 

35 correct entry in the BFT using the WAN addresses in the 
packet. This enhancement allows for WMPs to be filtered 
differently based on their source addresses, and thereby 
exploit Source-Specific Pruning features of future revisions 
of the IGMP protocol and future revisions of multicast 

^0 routing protocols. 
Conclusion 

One advantage of the present invention is that it may be 
implemented in a LAN such as 40 while requiring no new 
software in the ESs and no new protocol between the ESs 
and the routers or between the ESs and the bridges. The 
present invention may be implemented by modifying some 
or all of the bridges in a LAN and making no other 
modifications to the LAN or WAN, 

50 Another advantage of the present invention is that its 
operation is automatic. It requires no manual configuration 
by human operators — it configures itself automatically to 
whatever network topology it is placed into. It operates 
equally well in a LAN with multicast routers, as well as in 

55 LANs where no multicast routers are present or active. In 
particular, the automatic discovery of multicast routers is an 
advantage over schemes that require manual configuration 
of Router Ports and Router Segments. 

The invention has now been explained with reference lo 

60 specific embodiments. Other embodiments will be apparent 
to those of skill in the art. In particular, method steps have 
been grouped and labeled as being part of various sub- 
methods in order to increase clarity of the disclosure, 
however, these steps could be differently grouped without 

65 changing the essential operation of the invention. It is 
therefore not intended that this invention be limited, except 
as indicated by the appended claims. 
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What is claimed is: 

1. A method in a LAN intermediate system (IS) for 
determining which ports should have a special designation 
to allow for the transparant filtering of WAN multicasting 
packets comprising: 

reading WAN multicast data and control packets received 
at said IS; 

determining on which IS ports are received WAN muUi- 
cast control packets issued by a router and intended for 
the discovery of other routers in the network and 
attaching a special designation to those ports. 
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2. The method according to claim 1 wherein said WAN 
multicast control packets comprise DVMRP PROBE (IGMP 
code 1) or DVMRP ROUTE REPORT (IGMP code 2) 
packets, 

3. ITie method according to claim 1 wherein said WAN 
multicast control packets comprise PIM Query messages. 

4. The method according to claim 1 wherein said WAN 
multicast control packets comprise MOSPF protocol OSPF 
HELLO or Database Description packets whose options 
fields have the multicast capability (MC) bit set. 
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